How to recognise malicious DNS with free network monitoring tools

Logo
Presented by

Randy Franklin Smith | UWS, Rob McGovern | LogRhythm, Erika Noerenberg | LogRhythm

About this talk

DNS is woven into the fabric of both the Internet and corporate intranets. It works so well that you might even forget it exists—until it is used against you. Hackers are using DNS to find command and control (C2) servers, control compromised systems, and exfiltrate your data. In this webinar, a group of security experts from LogRhythm and Ultimate Windows Security team up to show you how to spot threatening DNS activity with LogRhythm NetMon Freemium. You’ll learn about the malicious use of DNS and how to detect: - Domain-generation-algorithm (DGA) queries - C2 data tunneled through DNS - Data exfiltration via tunneled DNS Register now to learn how to stop hackers from exploiting DNS to infiltrate your network.

Related topics:

More from this channel

Upcoming talks (0)
On-demand talks (87)
Subscribers (18997)
We know your job isn’t easy. That’s why we combine log management, machine learning, SOAR, UEBA, and NDR to give you broad visibility across your environment so you can quickly uncover threats and minimise risk. But a mature SOC doesn’t just stop threats. With LogRhythm, you’ll easily baseline your security operations program and track your gains — so you can easily report your successes to your board. Hear best practices, see technology demos, listen to speaker panels on our European BrightTALK channel. Visit our website for more information: http://www.logrhythm.com/